Documentos de Académico
Documentos de Profesional
Documentos de Cultura
com
1
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
2
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
Which protocol is used between SAP Servers? RFC, Remote function call
Which SAP product transforms the traditional SAP The ITS, Internet Transaction Server
applications to Web-based transactions, so that they are
accessible using Internet technology?
3
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
4
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
5
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
Which kind of systems can notify the administrator of IDS, Intrusion Detection System
attempts to attack the network or system?
6
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
What are the 2 disadvantages of public key encryption? • Encryption is only possible in one direction with
a single key pair. Alice can encrypt a message
to send to Bob, but not vice versa.
7
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
How is the complete infrastructure that manages the A Public-Key Infrastructure (PKI).
issuing and verification of certificates called?
CN=Common Name,
OU=Organizational Unit,
What are the different parts of a distinguished name? O=Organization,
C=Country
8
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
9
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
Which key is used to create the digital signature The private key of the user
10
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
Dialog
System: used to run background jobs.
Communication: used for communication without dialog
What are the 5 master-user types? between different systems (RFC/CPIC)
Service: allows multiple logon, no password check.
Reference: used only to assign additional authorizations
to Dialog users
11
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
12
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
13
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
14
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
What should you specify in order to allow the execution You must specify an entry of the program sapxpg in the
of external command? file secinfo
15
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
What are the two levels of SAP change options that • The system change option
define whether customizing and development is • The client change option
available?
16
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
• DEVCLASS
• OBJTYPE (PROG)
What are the 5 fields of the authorization object
• OBJNAME
S_DEVELOP
• P_GROUP
• ACTV
17
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
18
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
o User
o Audit Classes
4 types of security audit log filters? o Client
o Security Level (Only critical, Severe and critical,
all)
19
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
20
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
SNC: Where are the private keys stored? In the SNC PSE
What is the transaction to maintain the SNC PSE? Use the trust manager Æ S_Trust
21
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
What is the table for the SNC System access control list SNCSYSACL
What is the table for the Extended user Access control USRACLEXT
22
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
SSO, Web: How is the SAP Logon ticket stored in the Stored as non-persistant session cookie in the web
web-browser? browser (named MYSAPSSO2)
User Id,
Validity period,
What 4 information contains the sap logon ticket?
Issuing System ID,
Issuing system’s digital signature
23
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
same DNS,
What are the 3 constraints of the logon ticket? user Id identical in all systems,
user must accept session cookies
How is the integrity and authenticity of the logon ticket It is Digitally signed by ticket issuing server to provide
protected? integrity and authenticity protection
24
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
25
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
26
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
+ Better performance
What are the pros and cons of a Terminating SSL with
+ Session cookie can be used
load balancing?
- Less security
27
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
• Specify Plug-in
• Specify Server Port
SSL encryption with WAS. 4 info to specify with the help
• Specify whether to use client certificate
of profile parameters?
• Specify location of sap cryptolab
28
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
29
ADM960 – SAP Security consultant certification flashcards – julien.moix@gmail.com
30